|
1691
|
3.5 |
LOW
Network
|
-
|
-
|
Se encontró una vulnerabilidad en gougucms 4.08.18. Esto afecta una función desconocida del archivo \gougucms-master\app\admin\view\user\record.html del componente Record Endpoint. Realizar una manip…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-5249
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1692
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in z-9527 admin 1.0/2.0. This impacts an unknown function of the file /server/routes/user.js of the component User Update Endpoint. Such manipulation of the argument is…
|
CWE-913
CWE-915
Improper Control of Dynamically-Managed Code Resources
Improperly Controlled Modification of Dynamically-Determined Object Attributes
|
CVE-2026-5251
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1693
|
6.3 |
MEDIUM
Network
|
-
|
-
|
Una vulnerabilidad fue identificada en z-9527 admin 1.0/2.0. Esto afecta una función desconocida del archivo /servidor/routes/user.js del componente User Update Endpoint. Dicha manipulación del argum…
|
CWE-913
CWE-915
Improper Control of Dynamically-Managed Code Resources
Improperly Controlled Modification of Dynamically-Determined Object Attributes
|
CVE-2026-5251
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1694
|
3.5 |
LOW
Network
|
-
|
-
|
A security flaw has been discovered in z-9527 admin 1.0/2.0. Affected is an unknown function of the file /server/routes/message.js of the component Message Create Endpoint. Performing a manipulation …
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-5252
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1695
|
3.5 |
LOW
Network
|
-
|
-
|
Una falla de seguridad ha sido descubierta en z-9527 admin 1.0/2.0. Afectada es una función desconocida del archivo /servidor/routes/message.js del componente Message Create Endpoint. Realizar una ma…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-5252
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1696
|
3.5 |
LOW
Network
|
-
|
-
|
A weakness has been identified in bufanyun HotGo 1.0/2.0. Affected by this vulnerability is an unknown functionality of the file /web/src/layout/components/Header/MessageList.vue of the component edi…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-5253
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1697
|
3.5 |
LOW
Network
|
-
|
-
|
A security vulnerability has been detected in welovemedia FFmate up to 2.0.15. Affected by this issue is some unknown functionality of the file /ui/app/components/AppJsonTreeView.vue of the component…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-5254
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1698
|
3.5 |
LOW
Network
|
-
|
-
|
Se ha identificado una debilidad en bufanyun HotGo 1.0/2.0. Afectada por esta vulnerabilidad es una funcionalidad desconocida del archivo /web/src/layout/components/Header/MessageList.vue del compone…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-5253
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1699
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in Sanster IOPaint 1.5.3. Impacted is the function _get_file of the file iopaint/file_manager/file_manager.py of the component File Manager. Performing a manipulation of the…
|
CWE-22
Path Traversal
|
CVE-2026-5258
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1700
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in AutohomeCorp frostmourne up to 1.0. The affected element is an unknown function of the file frostmourne-monitor/src/main/java/com/autohome/frostmourne/monitor/contro…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-5259
|
2026-04-25 03:12 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
